FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W3037843220> ?p ?o ?g. }

• W3037843220 abstract "The vulnerability of deep neural networks (DNNs) to adversarial examples is well documented. Under the strong white-box threat model, where attackers have full access to DNN internals, recent work has produced continual advancements in defenses, often followed by more powerful attacks that break them. Meanwhile, research on the more realistic black-box threat model has focused almost entirely on reducing the query-cost of attacks, making them increasingly practical for ML models already deployed today. This paper proposes and evaluates Blacklight, a new defense against black-box adversarial attacks. Blacklight targets a key property of black-box attacks: to compute adversarial examples, they produce sequences of highly similar images while trying to minimize the distance from some initial benign input. To detect an attack, Blacklight computes for each query image a compact set of one-way hash values that form a probabilistic fingerprint. Variants of an image produce nearly identical fingerprints, and fingerprint generation is robust against manipulation. We evaluate Blacklight on 5 state-of-the-art black-box attacks, across a variety of models and classification tasks. While the most efficient attacks take thousands or tens of thousands of queries to complete, Blacklight identifies them all, often after only a handful of queries. Blacklight is also robust against several powerful countermeasures, including an optimal black-box attack that approximates white-box attacks in efficiency. Finally, Blacklight significantly outperforms the only known alternative in both detection coverage of attack queries and resistance against persistent attackers." @default.
• W3037843220 created "2020-07-02" @default.
• W3037843220 creator A5002189428 @default.
• W3037843220 creator A5022672030 @default.
• W3037843220 creator A5037854753 @default.
• W3037843220 creator A5042329783 @default.
• W3037843220 creator A5064821014 @default.
• W3037843220 creator A5076606321 @default.
• W3037843220 date "2020-06-24" @default.
• W3037843220 modified "2023-09-27" @default.
• W3037843220 title "Blacklight: Defending Black-Box Adversarial Attacks on Deep Neural Networks." @default.
• W3037843220 cites W1520914943 @default.
• W3037843220 cites W1596691921 @default.
• W3037843220 cites W1597305440 @default.
• W3037843220 cites W1609518033 @default.
• W3037843220 cites W1975873763 @default.
• W3037843220 cites W2007842132 @default.
• W3037843220 cites W2067713319 @default.
• W3037843220 cites W2092277251 @default.
• W3037843220 cites W2101832700 @default.
• W3037843220 cites W2112796928 @default.
• W3037843220 cites W2117539524 @default.
• W3037843220 cites W2128650797 @default.
• W3037843220 cites W2128698639 @default.
• W3037843220 cites W2166160300 @default.
• W3037843220 cites W2180612164 @default.
• W3037843220 cites W2194775991 @default.
• W3037843220 cites W2243397390 @default.
• W3037843220 cites W2302255633 @default.
• W3037843220 cites W2342045095 @default.
• W3037843220 cites W2408141691 @default.
• W3037843220 cites W2460937040 @default.
• W3037843220 cites W2504108613 @default.
• W3037843220 cites W2517229335 @default.
• W3037843220 cites W2570685808 @default.
• W3037843220 cites W2603766943 @default.
• W3037843220 cites W2768899812 @default.
• W3037843220 cites W2770885069 @default.
• W3037843220 cites W2786104118 @default.
• W3037843220 cites W2786118190 @default.
• W3037843220 cites W2883285025 @default.
• W3037843220 cites W2895097814 @default.
• W3037843220 cites W2946814535 @default.
• W3037843220 cites W2962759300 @default.
• W3037843220 cites W2963062382 @default.
• W3037843220 cites W2963070423 @default.
• W3037843220 cites W2963143631 @default.
• W3037843220 cites W2963158386 @default.
• W3037843220 cites W2963207607 @default.
• W3037843220 cites W2963389226 @default.
• W3037843220 cites W2963431851 @default.
• W3037843220 cites W2963564844 @default.
• W3037843220 cites W2963612069 @default.
• W3037843220 cites W2963626858 @default.
• W3037843220 cites W2963744840 @default.
• W3037843220 cites W2963857521 @default.
• W3037843220 cites W2963920068 @default.
• W3037843220 cites W2964082701 @default.
• W3037843220 cites W2964224652 @default.
• W3037843220 cites W2964253222 @default.
• W3037843220 cites W3006467270 @default.
• W3037843220 cites W3015625436 @default.
• W3037843220 cites W3041578036 @default.
• W3037843220 cites W3091857398 @default.
• W3037843220 cites W3118608800 @default.
• W3037843220 cites W3147782585 @default.
• W3037843220 hasPublicationYear "2020" @default.
• W3037843220 type Work @default.
• W3037843220 sameAs 3037843220 @default.
• W3037843220 citedByCount "7" @default.
• W3037843220 countsByYear W30378432202020 @default.
• W3037843220 countsByYear W30378432202021 @default.
• W3037843220 crossrefType "posted-content" @default.
• W3037843220 hasAuthorship W3037843220A5002189428 @default.
• W3037843220 hasAuthorship W3037843220A5022672030 @default.
• W3037843220 hasAuthorship W3037843220A5037854753 @default.
• W3037843220 hasAuthorship W3037843220A5042329783 @default.
• W3037843220 hasAuthorship W3037843220A5064821014 @default.
• W3037843220 hasAuthorship W3037843220A5076606321 @default.
• W3037843220 hasConcept C119857082 @default.
• W3037843220 hasConcept C154945302 @default.
• W3037843220 hasConcept C180932941 @default.
• W3037843220 hasConcept C2984842247 @default.
• W3037843220 hasConcept C37736160 @default.
• W3037843220 hasConcept C38652104 @default.
• W3037843220 hasConcept C41008148 @default.
• W3037843220 hasConcept C50644808 @default.
• W3037843220 hasConcept C94966114 @default.
• W3037843220 hasConceptScore W3037843220C119857082 @default.
• W3037843220 hasConceptScore W3037843220C154945302 @default.
• W3037843220 hasConceptScore W3037843220C180932941 @default.
• W3037843220 hasConceptScore W3037843220C2984842247 @default.
• W3037843220 hasConceptScore W3037843220C37736160 @default.
• W3037843220 hasConceptScore W3037843220C38652104 @default.
• W3037843220 hasConceptScore W3037843220C41008148 @default.
• W3037843220 hasConceptScore W3037843220C50644808 @default.
• W3037843220 hasConceptScore W3037843220C94966114 @default.
• W3037843220 hasLocation W30378432201 @default.
• W3037843220 hasOpenAccess W3037843220 @default.
• W3037843220 hasPrimaryLocation W30378432201 @default.

• next